[Git][security-tracker-team/security-tracker][master] xpdf NFUs

[Moritz Muehlenhoff]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
4f26d145 by Moritz Muehlenhoff at 2019-09-11T13:33:22Z
xpdf NFUs

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -255,7 +255,7 @@ CVE-2019-16117 (Cross site scripting (XSS) in the photo-gallery (10Web Photo Gal
 CVE-2019-16116
 	RESERVED
 CVE-2019-16115 (In Xpdf 4.01.01, a stack-based buffer under-read could be triggered in ...)
-	TODO: check
+	- xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
 CVE-2019-16114 (In ATutor 2.2.4, an unauthenticated attacker can change the applicatio ...)
 	NOT-FOR-US: ATutor
 CVE-2019-16113 (Bludit 3.9.2 allows remote code execution via bl-kernel/ajax/upload-im ...)
@@ -320,7 +320,7 @@ CVE-2019-16091 (Symonics libmysofa 0.7 has an out-of-bounds read in directblockR
 CVE-2019-16090
 	RESERVED
 CVE-2019-16088 (Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many recursive ...)
-	TODO: check
+	- xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
 CVE-2019-16087
 	RESERVED
 CVE-2019-16086



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4f26d145784c96fb49e57b8433e5716f1f13c1c2

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4f26d145784c96fb49e57b8433e5716f1f13c1c2
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190911/62e060d6/attachment.html>